[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OpenLDAP 2.0 gamma and objectClass

To: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>, openldap-software@OpenLDAP.org
Subject: Re: OpenLDAP 2.0 gamma and objectClass
From: Anthony Dean <adean@microcenter.com>
Date: Thu, 24 Aug 2000 14:44:38 -0400
References: <4.3.2.7.0.20000824111254.00b278d0@router.boolean.net>

>
>
> >    (objectclass=posixAccount) ---- also finds zero entries
>
> This is correct (unless you defined posixAccount by including
> nis.schema... which, due to lack of two syntax validators, you
> cannot).  Note that equality matching for objectClass is done
> by OID. If the assertion string cannot be normalized to an OID,
> the assertion is Undefined.
>

I did include nis.schema.  Since authentication was my main concern I just
removed everything requiring those syntax validators.

>
> >    (objectclass=ou) --- zero entries again
>
> Unless you've extended schema, this is correct.  There is
> no 'ou' objectclass.  Use 'organizationalUnit' instead.

On double checking I see 'ou' is just an attribute type... oops.  I guess
that does make sense than.

>
> >    (uid=ad*) ---- finds uid=adean,dc=mycompany,dc=com
> >
> >This isn't normal is it?
>
> Normal would be have 'schemacheck on'... which would cause
> appropriate errors to be returned when adding these entries.

schemacheck is on.

posixAccount is a valid objectclass so "(objectclass=posixAcount)" should
work.  Or is there something else.

Follow-Ups:
- Re: OpenLDAP 2.0 gamma and objectClass
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

References:
- Re: OpenLDAP 2.0 gamma and objectClass
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

Prev by Date: SHA encryption
Next by Date: Re: get help
Index(es):
- Chronological
- Thread